← Retour aux CVEs
CVE-2012-0193
N/ADescription
IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.43, 6.1 before 6.1.0.43, 7.0 before 7.0.0.23, and 8.0 before 8.0.0.3 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Details CVE
Score CVSS v3.1N/A
Publie1/20/2012
Derniere modification4/11/2025
Sourcenvd
Observations honeypot0
Produits affectes
ibm:websphere_application_server
Faiblesses (CWE)
CWE-20
References
http://osvdb.org/78321(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg1PM53930(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg21577532(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg24031821(psirt@us.ibm.com)
http://osvdb.org/78321(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1PM53930(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21577532(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg24031821(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.